Oval Definition:oval:org.opensuse.security:def:20132777
Revision Date:2022-05-20Version:1
Title:CVE-2013-2777
Description:

sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session without a controlling terminal device and connecting to the standard input, output, and error file descriptors of another terminal. NOTE: this is one of three closely-related vulnerabilities that were originally assigned CVE-2013-1776, but they have been SPLIT because of different affected versions.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-2777
Mitre CVE-2013-2777
SUSE CVE-2013-2777
SUSE-SU-2013:0793-1
SUSE-SU-2013:0793-1
SUSE-SU-2013:1594-1
SUSE-SU-2013:1594-1
SUSE-SU-2013:1595-1
SUSE-SU-2013:1595-1
Platform(s):SUSE CORE 9 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP4 for x86
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP3 LTSS for x86
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Server 10 SP4 for IBM POWER
SUSE Linux Enterprise Server 10 SP4 for IBM zSeries 64bit
SUSE Linux Enterprise Server 10 SP4 for IPF
SUSE Linux Enterprise Server 10 SP4 for x86
SUSE Linux Enterprise Server 11 SP1 for Teradata
SUSE Linux Enterprise Server 11 SP1 LTSS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP1-LTSS
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
SUSE Linux Enterprise Server for SAP Applications 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Teradata 10 SP3 for AMD64 and Intel EM64T
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND sudo-1.7.6p2-0.2.12.5 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
    • Definition Synopsis
  • Release Information
  • sles10-sp3-ltss is installed
  • AND sudo less than 1.6.8p12-18.21.8
  • OR Package Information
  • sles10-sp4 is installed
  • AND sudo less than 1.6.9p23-0.18.1
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND sudo-1.7.6p2-0.2.12.5 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17.5 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND sudo-1.7.6p2-0.2.12.5 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND sudo-1.7.6p2-0.23.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND sudo-1.7.6p2-0.17.5 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP2 is installed
  • AND sudo-1.7.6p2-0.2.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND sudo-1.7.6p2-0.2.12.5 is installed
    • BACK